57abbd9f1c0abf8cdeceebbd52af2e1b320f8ebcac04a3e7fec9683010b2c9d5

Analysis

max time kernel
122s
max time network
127s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
22-05-2024 22:59

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

68ee3ebfb4c04a382571b02a1bad56f9_JaffaCakes118.html
Size

2KB
MD5

68ee3ebfb4c04a382571b02a1bad56f9
SHA1

e46ceb76874c50bbbe155283852dfdb947c4ad0f
SHA256

57abbd9f1c0abf8cdeceebbd52af2e1b320f8ebcac04a3e7fec9683010b2c9d5
SHA512

b2987bc63d41fda9996e104035ffb9becaface6846aa16be7d0700856decd3b960fe9823454ca0763c09734e5521c939009ee596ef4138fb5ea5d71fecbafa41

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

Processes:

iexplore.exeIEXPLORE.EXE

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{EF74A361-188E-11EF-A002-FED6C5E8D4AB} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000587104b0d2f7da409208cf3ae9e77a2300000000020000000000106600000001000020000000c96703b50f9f7a0bcb50923b350bd264491e9c51da77b5a08d9b677f67205afc000000000e8000000002000020000000f6845a7e8c81f3a786aef41fe8ef1129f25bcb4cef48fc3926a56088789831412000000079f3374ee57e75e844be2be13289bf62fe6612496693e82ec8e4664ffefb3ccd40000000721f70a5d5e7a545f619b3a367e71869b8c46b006eb75951ca04fb49339064da1679068930c73c2b4b58fd350d9c7bc9fd2a61aa73ca9f9eee75670709eb6cb9	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "422580632"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 5013f0c39bacda01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

IEXPLORE.EXE

pid process

2424 IEXPLORE.EXE
Suspicious use of FindShellTrayWindow 1 IoCs

Processes:

iexplore.exe

pid process

2552 iexplore.exe
Suspicious use of SetWindowsHookEx 6 IoCs

Processes:

iexplore.exeIEXPLORE.EXE

pid process

2552 iexplore.exe
2552 iexplore.exe
2424 IEXPLORE.EXE
2424 IEXPLORE.EXE
2424 IEXPLORE.EXE
2424 IEXPLORE.EXE

pid	process
2424	IEXPLORE.EXE

pid	process
2552	iexplore.exe

pid	process
2552	iexplore.exe
2552	iexplore.exe
2424	IEXPLORE.EXE
2424	IEXPLORE.EXE
2424	IEXPLORE.EXE
2424	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

Processes:

iexplore.exe

description	pid	process	target process
PID 2552 wrote to memory of 2424	2552	iexplore.exe	IEXPLORE.EXE
PID 2552 wrote to memory of 2424	2552	iexplore.exe	IEXPLORE.EXE
PID 2552 wrote to memory of 2424	2552	iexplore.exe	IEXPLORE.EXE
PID 2552 wrote to memory of 2424	2552	iexplore.exe	IEXPLORE.EXE

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\68ee3ebfb4c04a382571b02a1bad56f9_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2552

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2552 CREDAT:275457 /prefetch:2
2⤵
- Modifies Internet Explorer settings
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2424

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
bfa95e924cfcfa2ffcc50f4cc4a03e80

SHA1
6e0f16cf17937de8343fb9585003d6f498e2d2cc

SHA256
871260d0ac50d04ce039e1458ad151fed0eab707d599bb220e44f7165d3d0632

SHA512
13015f4849ca3f22cecbf3b34e6fd7dca4427c380db99afc212b32401194baa9c44043ae513862b7c531941fc9087777f336efa2717e5061a868d561607f8f5a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
94afa660b979e50dc4d10f552b341a83

SHA1
6faf338eb8fc11eb965783a10cb3c291144d996d

SHA256
9ba4d8d115dbf9db13f63f698d1ac4a27228bc8eaa3aa94427479cce88ed4bdd

SHA512
748ba97d59e58e9824071f7d5e611cbe089a23557c8334122edfd37c984790b9d938ae36bf08b34bcd20d762570ed5e806882469e98bd1ca9a626047213da242

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
28a22a842d07e873d643667d0f2ceb35

SHA1
f21c4caf7e96456a3f05e864092645385ac50d0b

SHA256
da0b2c68e14bdd0bb3df600035a25ad1f52e7b03df6da4f056f2cd3be399c1e6

SHA512
c552fb7573bc1e48ecb9972b76eb937463cb8ef342ffa05fff0cc021fd40b65306db98c258bcc3e29e24f8e00d6d55da057688b7f2b0a8af588f0b2c604713e9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
9f1ae9ff3dbe64cee7ac7d590e50f225

SHA1
7e3e5d7ea8ac17c717b8778c0f6c1b487fd75925

SHA256
570e558993b6ce8fa94e3c9ea7ec33f6480499605d38354eeb3e60bfbaf9d6b2

SHA512
632b923f8ea6a061b4d7311da4b960667d8dc1282260c70b0932941966c0d55995cb5f434b393249251eaadd0e0c4870ff51aeeeede4c7a70be99118745c0835

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
2124fc23ad842baa8022c3c7e08d641c

SHA1
7ac51973d1bba881dcc72e0cf6a1370ec4663816

SHA256
36750b1d8bdb3264310078602874359a0c70136bb709dc5046cbec337d92b14e

SHA512
df662e8f90769166f906c48482757a6f947759af86995a8cd7b16bd3e10a15c0a528b73c997cc9e4fdf33c533bf08dbc9abf5b6a9c3819879152b7bf82056e7b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
abd71e88579f9f60bebca3c3fe64935c

SHA1
55b90cb34f9dbce29ad194c7d7ec816afcf19077

SHA256
55c27ca512e50e6fafb87e8c9e30ec290bdc3870b3ef45459f73df5e4790b81c

SHA512
aca77841b8ab8c09d07686f58fc98b9f6d007fd3bce3b6181c06fe7dbbdaeb0605d892e0486ccaaeb72a6b329e4e2972f4587e7840b61d6ffcd268ecf5daaadf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c890307db46ae48020f4d6b02bbea09d

SHA1
f6fe5f6caa193758be4ae24e6f3419acb27946f7

SHA256
94e973d785b080d9d5011da84ac17305f4de3449ea511a4e30269488e6cdea87

SHA512
2570df8e16c63e3e5af2352157f4a1bef934fdb065689a14521fe7b43615ef36f85abff99bae8b9cbfc715a79406e0b29514f419d8fd4c5b13ef7c78ef1e451d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
375d6c7c47d669bb0d72a07bffff47d6

SHA1
74b66e50ea1a656277b9b808d11054bdb8e0ef7d

SHA256
42009b9e481bc6a1ef5c476198502ae7e73e6d4cfdae6c3a28c4658d55db07da

SHA512
d534d25b1229c31b49f566fd3355c53fd418ded2d6df4c3d4b00f028c833edc9611db70313203503fb1a0685530a29789d9d6365e481f699ada07f2fa57f7f9b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b2247aa71ebc41504e26f0efb2400b69

SHA1
4e2aad8101183e2acea8e4288acceea3b20f619d

SHA256
c88c22f20474666fc70fdec01432a06615a0abce5c293f133eeaf0b3e1511962

SHA512
3f23994f6d9f0b2efcb7d506fcb5323758c3710560e3d5d82971a150f51f8b9290c7da1eded544f6e4d134f75cfc20eb40e463565c197fe66df973a3d60a827a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
de17f1f9fe09d7a83906a19dccd5ffb2

SHA1
d0ecd9dbb7ca60d436ba9216c58440335e0246a1

SHA256
0073949d79733bb189e76c9c70f2a3379c8b9bae4728c64d5c743d7fd91f260b

SHA512
a6d3347587430f5a0a1f5404a32faf1a62e5f978fc2aa9dc26b25949cc3cb768cc5139eb32dc15b87d92075a7065cae9cbe6a4c4fbf3c79813beff8ccc290c52

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
37957f7e90440dd2dd5485ec249b936b

SHA1
91bbf357425224121bd9e0a238e291020725bd83

SHA256
7b2343f3e8a14284caf3695b2dd8032164ad81fccaef2663a86fd5153e5d4bc7

SHA512
b4078d0140381d8dd740ececf5ac873736672ee50119cca9a61c795f10dcec3479722c8c0bb02aa244d42a82f72014d18c6f250b9d5e229833a13690b3cd2c1c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
60061500cfe432aae9488b3b60d0cde3

SHA1
35d69ca224420ea3e369cb6bd5194eaf8c0e61b1

SHA256
5eaa5ba6143cc9077cce9dea90c2ee576686f7870a95242e638f2f46a78e0ccd

SHA512
e9e16f445ed82b5d4d35c9df21d0a6244907c20677c5c6ef795dd7de54170c51221be273f0e9ed226a0d9ce43698de32575de19533d6869d1ccc900a9266ec77

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f28103ddab496600a38707e0cc91a42a

SHA1
1505f2bb4f1d3063ad11bb833907e9fcbee63efc

SHA256
9cee125cae41bb8e51cb7dd83d7bdf2a8b5802ca38fb86a679d5ae80ef491d2e

SHA512
a90dfe9c9aa968aaab8a294c2319e7732fda37657740ec7dd6c96ed7434488611fdca7ec446e516af824e2d2a2ac25a449a4bbd6c24bae29e9c04ccc044ca843

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3b8a9d9a62655e99b265a627aeef024b

SHA1
1fc31950cf2e3347ed411645053dc6bd11279770

SHA256
2e59d77cad8d3d4146a8273f6c4496d5336ab6f354b2c45ac73e488f9b52ebd2

SHA512
81d355a840f29cc8bd9322af7e3cfde63a05bf9129a85884e5c561aac1a21929d135b137de0db438edb002a4a6c57b1b12531194fce516dd189ccd4b5746f67e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
767f1816a3c484722730d23859a8e6e2

SHA1
89946616ad60aa43f4abbad2e89833e6f1b12bef

SHA256
40ee9a617caf04fc7cafc39a2dd80059fbd37d9a9f7d04e4bd63c189b3ac1ec9

SHA512
7406038d3fb70e9c91e2fceda506df735c514337acbe728fd4499ee0824ce5fe2c31272c814f96b76d3e2cda7fc886c076b5c2e95cced611d03572cc7cd42aef

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e7bd96d0ccf5fb3aa8a9f0c682f3e3e0

SHA1
e87159d3db22d3957655cd26c9c838c4d8e8976c

SHA256
4ebf3377afb9d1f607ffa671d6ffd5fc64b576a1fcb44003b3be8d379508989f

SHA512
00d2c4bebf6afb4b0ffc00f4cf44bb72077a5ac060ba5ed10631e37662b8c90ef57c0904edf49bfaef192574c170bf3a4ff3698e7ab3dc226b88b38fbfc281b5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0bb1bc9d070a87d1275dea54d234abda

SHA1
e0225630361b0f9094172863407b9e686bab7923

SHA256
98808bdad52e36e27da644d88a81289d0c91c850698fe5cef4e11d5fffd896d2

SHA512
9fb1021b9f8d230e1681123d7bd32322a723f339038ac542ba82d3a564cd5f72b577688c093cb57e9099c647e4a84b9500438101cd3ee7ce983b7197f5a1fe8a

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab449F.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar4531.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit